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Abstract 

The WAP Identity module contains private keys and associated certificates. For some 
situations it may be useful to have certificates that are not personalised for the actual user, 
but can be used to create actual personal certificates. This paper introduces certificates 
created by a WIM manufacturer. They can be used in the registration process, to make sure 
that keys being certified are in a secure environment. 
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Introduction 

gg^Ksa joss, sszi sS5 

that keys being certified are processed in a secure environment. 

The personal certificates can be stored in the WIM or in the phone, or in a directory (eg, 
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Definitions, Acronyms, and Abbreviations 



WIM 

RA 

CA 



WAP Identity Module 
Registration Authority 
Certification Authority 



Background 

The WAP Identity Module (WIM) is a tamper resistant device that enables digital sianatures 

XSSXIS^^ti^m the t module - The W,M is ^^-SSSte 

(^nW?u5Ste%) C ° nta,nS Pr ' Vate k6yS and aSSOdated certificates 

l"Vl giSXrat -° n P[° c f dure - the us er of the WIM needs to obtain a user public kev certificate 
for a key pair in the WIM. A user certificate means that the public key fe a^octatS w5? ! 
user identity, relevant to a registration authority (RA). V assoc,ated w,th a 

kevStnl^nV^ a w PUb " C kG l' needs t0 be confident that tne corresponding private 
key is contained in a secure device and handled in a secure way in all circumstances 

Security of a private-public key pair includes 

" RSA) 90 ° d QUality PaiY (randomness - some algorithm specific checking done e.g. for 

• no copies of the private key is left outside the WIM if the key pair was Generated outside 
the device (th.s applies at least for keys used for digital signatures) 9enerated outside 

• it is not feasible to obtain the private key afterwards from the WIM 

Security of the key pair needs to be guaranteed by the WIM manufacturer if the «,«i e »„,»- • 

saiat*' officer ana J he ~r P S'^? h rs° 

aDie to see the device), it may in some cases be possible to achieve some certain*, n t ihl 

™!«J V '^KV' th ! deViC6 - This not °e suff icier!?, So?? £ not poss bte i he 
reg,strat.on of the key takes place without a physica. contact, i.e., using a iiSi£^IStl^ 
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Description of the WIM Manufacturer Certificate 

To make it possible to verify the security of the key pair contained in the WIM, the WIM 
manufacturer certificate is used. It means that the WIM manufacturer, when generating a key 
pair, creates a certificate for the key pair. 

The meaning of a WIM manufacturer certificate is that the WIM manufacturer guarantees that 
the key pair has been generated and stored in a secure way. 

The WIM manufacturer certificate is signed using a manufacturer private key. 

The contents of the certificate are descibed in the following tables. 



Field 


Content 


Certificate serial number 


Up to the manufacturer. Eg, the device serial number (ICC ID) 
combined with a key number. 


Issuer 


Manufacturer identification. 

Eg, the same value as in PKCS15Tokenlnfo.manufacturerlD 


Valid not before 


Date and time of creatinq/storinq the key and certificate 


Valid not after 


End of expected maximum lifetime of the device 


Subject 


A concatenation (stored as PrintableString) of 

• serial number (ICC ID), same as 
PKCS1 STokenlnfo.serialNumber 

• a letter (or combination of letters) indicating key usage 
(preceded with '-') 

• optionally key ordinal number (preceded with '-') 
Eg, 

1 234567890 1 23456789-SD-2 
987654321 0987654-N 


Public key 


Public key associated with the private key in the device 



Key Usage 
Indicator 


Supported WIM 
Primitives with this Key 


Comment 


N 


ComputeDigitalSignature 


Non-repudiation. The WIM requires user 
verification (PIN) every time. 


S 


ComputeDigitalSignature 


Digital signatures used for authentication (eg, for 
WTLS RSA or SSL handshake). 


K 


KeyAgreement 


Used in ECDH handshake. 


D 


Decipher 


Used for unwrapping a key (eg, for S/MIME 
decryption) 



Verification of a Manufacturer certificate 

As said above, a Registration authority should be able to verify the WIM manufacturer 
certificate. In order to do that, the RA should have access to the manufacturer CA certificate 
(containing the manufacturer public key). Based on that, the RA may verify the IM 
manufacturer certificate, and thus become convinced that the IM key that is being registered 
has proper security. 

In practice, the manufacturer may have a single CA certificate to certify all keys, or it may 
have a top CA for certification of intermediate CAs that certify actual keys. The manufacturer 
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(top) CA may have been certified by a 3 rd party CA ( which makes it easier to securely 
distribute the manufacturer (top) CA certificates of different manufacturers 

Creation of the WIM Manufacturer Certificate 

There are different cases to create key pairs, and the associated methods to create 
manufacturer certificates. 



Case 1 

In this case, the key pair is generated outside the device and then saved in the device In this 
case the generation procedure and saving needs to be highly secure. The advantage in this 
method is that the device need not support key generation, which may be demanding for a 
low-end device while maintaining good quality of the key. The disadvantage is that the 
generation procedure must be highly secure which may be administratively difficult to 
achieve. 



The procedure of creating the key pair and manufacturer certificate is 
1 . create the key pair 

save the private key in the device 
erase all copies of the private key outside of the device 
create the manufacturer certificate data for the public key 
sign it with the manufacturer key 
save the manufacturer certificate in the device 



2. 
3. 
4. 
5. 
6. 



Case 2 

In this case, the key pair is generated inside the device as a part of the manufacturing 
process • 



The procedure of creating the key pair and manufacturer certificate is in this case 
1 . instruct the device to create the key pair 
retrieve the public key 
create the manufacturer certificate data 
sign it with the manufacturer key 
save the manufacturer certificate in the device 



2. 
3. 
4. 
5. 



Case 3 

In this case, the key pair is generated inside the device after the manufacturing process 
when the module is already in the possession of the user. In this case, the device has an 
initial management key pair that has been issued an IM manufacturer certificate (created as 
described in the case 1 or 2). This key can only be used internally by the device to certify 
newly generated keys (ie, the device does not allow this key to be used for ordinary 
purposes). 1 

The procedure of creating a new key pair and manufacturer certificate for that key is in this 
case: 

1 . instruct the device to create the key pair 

2. instruct the device to create a certificate using the management key for signing that, and 
save the certificate as a manufacturer certificate 

In this case the new manufacturer certificate must be accompanied with the manufacturer 
certificate of the management key, for verification. 
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